Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/WDKByGX7NqJDfRUz5yssvUofCvI.roa
File: WDKByGX7NqJDfRUz5yssvUofCvI.roa (raw, json)
Hash identifier: /coOsHZMjppcT99QQcGYRalG38LA6LN+d2bfZIdmzio=
Subject key identifier: 58:32:81:C8:65:FB:36:A2:43:7D:15:33:E7:2B:2C:BD:4A:1F:0A:F2
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DE4
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/WDKByGX7NqJDfRUz5yssvUofCvI.roa
Signing time: Fri 21 Oct 2022 09:45:25 +0000
ROA not before: Fri 21 Oct 2022 09:45:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24163
IP address blocks: 60.198.32.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3556 (0xde4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Oct 21 09:45:25 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=583281C865FB36A2437D1533E72B2CBD4A1F0AF2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:56:f7:21:49:03:fa:7e:a5:56:5c:7a:89:e1:
ab:91:66:3f:df:6c:48:44:c0:3b:1c:44:ee:42:02:
69:f3:d8:eb:d9:81:73:28:1e:cd:37:9f:69:aa:14:
0b:42:15:41:42:2e:c4:ae:6f:ae:78:7e:ae:3c:27:
0c:8c:03:58:9f:ea:05:c6:f1:57:23:c7:97:ae:72:
94:6d:a2:fc:6f:44:1d:cf:5a:43:5c:1d:ae:7a:20:
b4:3d:5b:54:fe:f1:1e:b3:0c:5e:be:a3:f2:3f:e9:
95:bb:46:cb:22:81:62:a4:6a:68:e0:e8:e8:bd:53:
37:c9:53:d0:80:cb:eb:fc:56:90:07:09:e8:16:83:
5d:bc:24:34:86:a1:b2:03:ef:a3:dc:80:0c:15:88:
91:9f:d3:d3:18:bb:46:56:71:eb:fd:42:b8:d7:d7:
d5:eb:16:f6:e6:50:7a:e5:55:bb:16:02:36:dc:b9:
23:67:d5:24:05:88:ea:42:97:ef:64:3c:88:45:0a:
6d:81:cc:ea:09:f4:26:9b:2e:8f:df:95:cf:9d:9a:
ce:39:de:49:57:48:3a:2d:cd:0a:fd:88:fe:13:09:
38:29:71:7a:db:e5:94:23:a7:8a:c1:4b:9c:c4:44:
65:9c:a6:8b:5c:38:10:3e:81:f0:d0:b8:ff:13:dd:
fe:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:32:81:C8:65:FB:36:A2:43:7D:15:33:E7:2B:2C:BD:4A:1F:0A:F2
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/WDKByGX7NqJDfRUz5yssvUofCvI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.32.0/23
Signature Algorithm: sha256WithRSAEncryption
42:48:bb:df:c7:23:d2:26:5d:73:6b:fd:c1:f3:47:2f:46:48:
ac:81:dd:ab:d1:87:26:e0:7b:ae:58:5b:e6:8c:57:3a:67:f8:
83:37:d7:5f:47:17:b6:d8:61:90:a4:28:1b:0d:92:4b:da:2d:
fa:07:26:3e:2c:a5:c7:a1:8e:69:88:c2:1a:37:fa:84:05:e2:
e3:83:4b:e0:c6:a3:9e:cd:68:44:87:f5:8c:55:e4:0e:8e:14:
6d:f5:4f:aa:43:c1:36:42:b2:65:28:31:4a:da:31:1d:93:bf:
9c:31:81:88:d1:1d:61:45:cc:89:8b:89:90:6c:d7:dd:ce:80:
5c:78:44:9c:8f:c6:e8:38:89:42:f7:cc:c4:05:78:78:37:9d:
27:cb:e3:ea:0c:98:41:c8:a1:85:7b:fb:49:8c:cf:e9:56:df:
3d:25:24:fd:22:30:ba:66:e1:70:06:3f:83:0f:ff:b0:a1:0a:
ed:9a:3a:19:7d:ab:a4:b9:78:15:e3:8e:5f:16:56:65:08:e4:
75:9a:8d:ea:fb:2d:7d:31:08:a8:f9:df:d5:d4:9a:c7:00:f3:
55:36:58:98:72:b3:42:e4:ee:09:25:10:4b:60:bb:bc:88:93:
95:1e:cb:9f:27:fd:cf:15:02:2e:fd:80:b2:29:37:09:3a:71:
85:ac:1b:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org